Hacklog

Archive for the 安全优化 Category

用yuicompressor来压缩你的js、css代码

Posted on 六月 4, 2010 by 荒野无灯

据说用yuicompressor压缩出来的东东经gz压缩后体积比其它工具更小。下载：http://yuilibrary.com/downloads/#yuicompressor 目前的最新版本是2.4.2 使用举例： (确保你已经安装了jre ,并且将jar文件放在与js... Continue Reading

关于php中的magic_quotes_gpc和safe_mode

Posted on 十一月 10, 2009 by 荒野无灯

今天重新配置了下php ,查看apache log却发现如下警告信息： PHP Warning: Directive ‘safe_mode’ is deprecated in PHP 5.3 and greater in Unknown on line 0 PHP Warning: Directive ‘magic_quotes_gpc’ is deprecated in... Continue Reading

XSS (Cross Site Scripting) Cheat Sheet Esp: for filter evasion

Posted on 三月 30, 2009 by 荒野无灯

http://ha.ckers.org/xss.html By RSnake Note from the author: XSS is Cross Site Scripting. If you don’t know how XSS (Cross Site Scripting) works, this page probably won’t help you. This page is for people who already understand the basics ... Continue Reading

PATH_INFO的方式来实现搜索引擎友好

Posted on 二月 10, 2009 by 荒野无灯

摘自：http://sushener.spaces.live.com/blog/cns!BB54050A5CFAFCDD!438.entry 我习惯使用PATH_INFO的方式来实现搜索引擎友好，比如： http://www.xxx.com/index.php/module/xxx/action/xxx/id/xxx 但是index.php能看到扩展名很不爽... Continue Reading

Top 1000 SQL Performance Tips

Posted on 十二月 25, 2008 by 荒野无灯

Interactive session from MySQL Camp I: Specific Query Performance Tips (see also database design tips for tips on indexes): Use EXPLAIN to profile the query execution plan Use Slow Query Log (always have it on!) Don’t use DISTINCT when you have ... Continue Reading